A relatively new ransomware group calling themself “Gunra” has shown it has no compunction about attacking hospitals. They have reportedly locked — and have started leaking information from — the American Hospital in Dubai (AHD). In its first listing concerning this attack, Gunra claimed to have exfiltrated the entire Cerner Millenium database (now known as…
Category: Health Data
Texas gastroenterology and surgical practice victim of ransomware attack
The InterLock ransomware leak site recently added Texas Digestive Specialists to its listings, claiming to have exfiltrated (and leaked) 263 GB of data consisting of 16,920 folders with 215,245 files. Finding no indication of anything amiss or any breach disclosure on the medical group’s website, DataBreaches sampled selectively from the data tranche. We noticed evidence…
Central Maine Healthcare tackles suspected cybersecurity issue; hospitals remain open
Central Maine Healthcare posted a notice on its Facebook page today: On June 1, 2025, technicians monitoring the information systems at Central Maine Healthcare identified unusual activity within the system’s computer software. In response, they immediately secured and shut off all information technology applications and hardware, including network servers and phone systems. Central Maine Medical…
Order of Psychologists of Lombardy fined 30,000 € for inadequate data security protection and detection following ransomware attack
The Privacy Guarantor has fined the Order of Psychologists of the Lombardy Region [Ordine degli psicologi della Lombardia] for 30 thousand euros for not having adopted adequate technical and organizational measures to guarantee data security. The Guarantor intervened following some complaints and the notification of data breach made by the Order, which declared to have…
Class action settlement following ransomware attack will cost Fred Hutchinson Cancer Center about $52 million
Elise Takahama reports a settlement in a lawsuit stemming from a ransomware attack on Fred Hutchinson Cancer Center in Seattle by the Hunters International gang: Fred Hutchinson Cancer Center has agreed to pay about $11.5 million to patients after a 2023 cyberattack put their personal data at risk. Hackers targeted parts of Fred Hutch’s clinical…
Comstar LLC agrees to corrective action plan and fine to settle HHS OCR charges
In May 2022, DataBreaches reported that ambulance billing service Comstar LLC in Massachusetts was notifying an undisclosed number of people following a data security breach of their system detected on March 26, 2022. On May 26, 2022, they also notified HHS of the incident, reporting that 68,957 patients were affected. Today, HHS OCR announced that…